top of page
Ebene 10.jpg

Privacy Policy


Data protection notice and privacy policy
We do our best to protect your personal data when you use our website and our services, and we strive at all times to maintain the security and integrity of your personal data in accordance with the applicable data protection law.
Personal data is any information that relates to an identified or identifiable natural person.
This data protection notice and privacy policy applies to our websites, including, (collectively “Websites”), and the applications and other services we offer (collectively “Services“). This data protection and privacy policy (“Privacy Policy”) provides information about which data is collected and / or made available to us when you use our Websites and our Services, how we store and use your personal data and what rights you have under applicable data protection law.

The data controller responsible for the processing of your personal data is

Potsdamer Str. 98, 10785 Berlin [EG1] [AG2] 

For more information on this Privacy Policy and to exercise your data protection rights (as described in more detail in Section H below ), you can contact us using the contact details above. 

We collect your personal data when

  • You use our Websites or make use of our Services, 

  • You contact us, e.g., by phone, email, social media or contact forms,

  • You submit or provide information through channels operated by us (including our Websites and Services), and

  • Third parties (e.g., business partners, resellers and contractors) provide us with your personal data in accordance with applicable data protection law.


We may collect the following information about you:

  • Contact details: your personal information, such as name, address, telephone number, email address, age and company.

  • Contract data: Information regarding existing contracts between you and us, such as customer number, contract number, date and duration.

  • Transaction data: details of transactions between you and us.

  • Payment data: Payment-relevant information such as your bank details and your credit card details.

  • Input data: information that you provide when you contact us or information that you submit or provide through channels operated by us (including our Websites and Services).[EG3] [AG4] 

  • Usage data: Information about how you use and interact with our Websites, as well as information related to your use of our Services, such as IP address, IP location and number of your device, type and version of the browser used and the browser plug-ins, login data, information on the mobile network used, time zone settings, operating system and platform, clickstream to, through and from our Websites and our Services, time and duration of your visit to our Websites and use of our Services, use of features of our Websites and our Services, interaction with user interfaces, page interaction such as scrolling and mouse hover.

We will only process your personal data insofar as this is permitted under applicable data protection law.
The following overview describes for what purposes and on what legal basis we process your personal data and - provided the processing is based on Art. 6(1)(f) of the General Data Protection Regulation (GDPR) - the legitimate interests for such processing: 

The legal bases mentioned in the above overview are described in more detail below: 

  • Art. 6(1)1a) GDPR: You have given your consent to us for processing your personal data.

  • Art. 6(1)1b) GDPR: The processing of your personal data is necessary for the fulfillment of a contract to which you are a party or is necessary for the implementation of pre-contractual measures that take place at your request.

  • Art. 6(1)1c) GDPR: The processing of your personal data is necessary for us to fulfill a legal obligation.

  • Art. 6(1)1f) GDPR: The processing of your personal data is necessary for our or a third party’s legitimate interests, unless your interests or fundamental rights and freedoms that require the protection of personal data prevail.

We use cookies on our Websites. If you use our Websites, a cookie can be placed in the memory of your device. Cookies are small data sets that contain alphanumeric information and that our Websites can save on your device for later access. We use cookies to offer you a personalized and improved user experience. 
Both transient and persistent cookies are used on our website. 

  • Transient cookies: Transient cookies are automatically deleted as soon as you close your browser. Such transient cookies include so-called session cookies. Session cookies contain an identification feature that can assign various requests from your browser to your current session and allows your device to be recognized when you return to our website. 

  • Persistent cookies: Persistent cookies are automatically deleted after a certain period of time, which varies depending on the type of cookie set. We can use persistent cookies of this kind to enable the use of our websites, e.g., to measure the number and frequency of visits to our Websites and to recognize which parts of our website have been visited.

Many browsers allow cookies to be set by default. You can deactivate the setting of cookies in the settings of your browser. You can also delete the cookies set by our Websites in the settings of your browser. Please note that deactivating cookies or deleting them may restrict the functionality of our Websites.

We will not trade your personal data. Furthermore, we will not share your personal data to third parties, unless as described in this Privacy Policy.
In order to facilitate the purposes of processing your personal data described in Section D of this Privacy Policy, we may share your personal data with the following third parties in connection with services that these third parties provide for or together with us, provided that these third parties may not use your personal data in any way other than to provide services to us:

  • E-mail service provider, 

  • Providers of data processing systems,

  • Infrastructure provider,

  • Data platform provider, 

  • Data storage provider,

  • Billing solution provider,

  • Providers of photography services,

  • Scheduling solution provider,

  • Providers of communication and messaging solutions,

  • Marketing automation providers, and

  • Data analysis provider.


We may also share your personal data to third parties if required by law, e.g., to respond to a judicial or administrative request.

We store your personal data for the period necessary for the purposes for which they were collected (see Section D of this Privacy Policy) and / or as long as we have a legitimate interest in storing it. We also store your personal data for a legally, judicially or officially prescribed period. If necessary, we also store your personal data until the expiry of the applicable statute of limitations in order to enforce our own claims.



With regard to the processing of your personal data, you have the following rights under GDPR:

  • The right to request confirmation as to whether your personal data is being processed and, if this is the case, the right to information about this personal data and certain relevant information. This information includes, among other things, the processing purposes, the categories of processed personal data and the recipients or categories of recipients to whom the personal data have been disclosed or are still being disclosed (Art. 15 GDPR). Please note that the rights and freedoms of other data subjects can limit your right to information.

  • The right to request the correction of your personal data if it is incorrect or incomplete (Art. 16 GDPR).

  • The right, under certain conditions, to demand that your personal data be deleted immediately ("right to be forgotten") (Art. 17 GDPR).

  • The right to request that the processing of your personal data be restricted under certain conditions (Art. 18 GDPR).

  • The right to receive your personal data in a structured, common and machine-readable format and the right to transfer this personal data to another third party responsible without hindrance from us (Art. 20 GDPR).

  • The right to object to the processing of your personal data in certain situations, provided that the processing is carried out in accordance with Art. 6(1)e) GDPR for the performance of a task that is necessary in the public interest or in the exercise of official authority a legitimate interest of us or a third party in accordance with Art.6(1)f) GDPR or your personal data are processed for direct marketing purposes (Art. 21 GDPR). 

  • The right to revoke your consent to the processing of your personal data at any time. Such a revocation does not affect the lawfulness of the processing that took place up to your revocation.

To exercise these rights vis-à-vis us, please contact us using the contact details given in Section A of this Privacy Policy.

Notwithstanding the above rights, you have the right to lodge a complaint with a supervisory authority.

We have implemented security measures to protect your personal data. We maintain appropriate administrative and technical security safeguards to protect against loss, misuse, unauthorized access, modification or disclosure of your personal data. All personal data is stored securely and can only be accessed by our authorized employees and only if this is necessary for the performance of their work (“need to know basis”).

This is the current version of our Privacy Policy. We reserve the right to adapt this Privacy Policy (in particular in the event of changes in the legal situation or changes to our Websites and our Services). Changes to this Privacy Policy will be made by adapting this page and, if necessary, will be communicated to you separately. Please review this Privacy Policy at regular intervals.


Potsdamer Str. 98a

10785 Berlin

© 2022 VIMMO GmbH

bottom of page